NEAS[.]48c320f7e82b153c519b6a0ad856e430[.]exe | Triage

Sharing

General

Target

NEAS.48c320f7e82b153c519b6a0ad856e430.exe
Size

3KB
MD5

48c320f7e82b153c519b6a0ad856e430
SHA1

a02847d508a6e2eff93e5907164c98bb29d57568
SHA256

630293809787e2417f4d59367acdd77ee645eb651adeed7772de78e625753288
SHA512

870616c762a7745c26e787c6bcf9a30280ff07ccf305df735b984e2067cf5f653e51cd0a665a00e616ab480408c8f40899be92da9e9db30dcc22f2eb64239721

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.48c320f7e82b153c519b6a0ad856e430.exe

Files

NEAS.48c320f7e82b153c519b6a0ad856e430.exe
.dll windows:5 windows x86

e97a70102cce77bfe0dc571cb46a4352

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateFileW
VirtualAlloc
ReadFile

user32

MessageBoxA

shell32

ShellExecuteW

msvcrt

_adjust_fdiv
free
_initterm
malloc

Exports

Exports

crys

Sections

.text
Size: 1024B - Virtual size: 558B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 482B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ